ReThink Security

#AppSec teams should think in three phases: Awareness, Enablement, and Enforcement to work efficiently with development teams. Click through for more info. #security #prodsec #ciso #infosec #cybersecurity rethinksecurity.io/posts/the-thre…

Stop acting like #phishers! Legit banks are contacting people in the phishiest way possible, and phishers who are taking extraordinary steps to trick you. We need to step up our game to protect users. #appsec #phish rethinksecurity.io/posts/stop-act…

What would you do with a magic wand to help reduce #software #risk? #appsec #ciso #security rethinksecurity.io/posts/reducing…

@j_opdenakker 1 Publicly stating a commitment to security, but no budget or time 2 "Security process is important... for other companies, but myCorp hires the best and doesn't need it" 3 Misunderstanding risk, particularly likelihood of breach, ransomware, or other attack

What are according to you the 3 most common signs that an organization doesn’t take security seriously? #infosec

There were 18 Billion records lost in #beaches since 2019. If each record was one inch long the beaches would stretch around the world ... 11 times! We need to protect our users! rethinksecurity.io/posts/you-have… #AppSec #hackers #DEFCON

Sounds about right. This is more common than you may think in large SaaS companies. reuters.com/article/us-twi… #Twitter #hack #breach

The July #newsletter is out! Lots of great #security articles and #news this month! Check it out here, and subscribe if you find it useful. #ciso #appsec #hackers rethinksecurity.io/newsletters/ju…

Interesting list of prices and products in the #darkweb from @Privacy_Affairs here: privacyaffairs.com/dark-web-price… I wrote my own article on exploring the darkweb a few months ago. You can check that out here: rethinksecurity.io/posts/explorin…

@ftp_alun Even if true, I'm not sure that makes me more comfortable. Part of advocating for the privacy of your users is knowing the code you are using.

#iOS14 adds a warning if an app inspects your clipboard. You can see a demo of this in this video. youtube.com/watch?v=pRSWdt…

A ton of apps are looking at your clipboard contents. #iOS14 makes this clear. #privacymatters rethinksecurity.io/posts/you-have…

Check out my latest post on what you can do to minimize your #privacy risk online as an #app #developer and as a #consumer. rethinksecurity.io/posts/you-have…

I worry about #privacy a lot, that's why I run an ad blocker like @ublockorigin or @DuckDuckGo's privacy essentials. Web #Performance is another reason to install a blocker. debugbear.com/blog/2020-chro…

BGP Hijacking is real and can be impactful! @IBM #cloud had major outage. www-itproportal-com.cdn.ampproject.org/c/s/www.itprop…

Hey cyber enthusiasts, here's a FREE 6-week online bootcamp for ANYONE to learn IT/Cybersecurity. You'll receive a voucher for the Security+ exam. Registration by June 8th ohiocyberrangeinstitute.org/registration.h… #infosec #cyber #CyberSecurity #WomenInCyber #BlackTechTwitter #WomenWhoCode

Stand by for a ReThink Blog post on the dangers of too much user tracking and what you as a user can do to protect yourself and what you can do as a business to design user-centric data models.

That was a trick question, those are all trackers. What’s worse those are all used on a single page on a single site.

Pop Quiz: Which of these are real companies that track you around the web and which are companies I just made up: * MiQ * Floodlight * Google Analytics * Kameleoon * Ve * Baidu Analytics * Hotjar * Mautic * Impact Radius * Pixlee * Facebook Pixel * UNiDAYS [continued below]